Amazon Web Services — Architecture, Migration & AI Integration | 10+ Years
About the Role
As an AWS Solution Architect, you will be at the forefront of designing and implementing robust, scalable solutions on Amazon Web Services. Your deep expertise in AWS infrastructure, security services, and AI/ML capabilities will drive innovation and efficiency across the organisation. Collaborating with cross‐functional teams, you will architect landing zones, lead migration programmes, and integrate AI and ML services across the AWS platform contributing to the company's cloud‐first strategy and digital transformation goals. This role demands deep, hands‐on AWS expertise combined with the ability to communicate complex architectures to both technical and business stakeholders.
Responsibilities
* Lead the design and implementation of scalable AWS architectures that align with business objectives, Well‐Architected Framework principles, and industry standards.
* Architect AWS landing zones using Control Tower, Organizations, and multi‐account strategies with guardrails, SCPs, and security baselines.
* Design VPC architectures, subnet strategies, security groups, NACLs, Transit Gateway, Direct Connect, Private Link, Route 53, and multi‐region connectivity.
* Lead AWS migration engagements end‐to‐end, assess on‐premises workloads, define migration strategies, and architect target environments using MGN, DMS, and Migration Hub.
* Oversee the integration of AWS security services, IAM, Security Hub, Guard Duty, KMS, WAF, Config, and Secrets Manager to ensure robust protection of data and applications.
* Drive the adoption of AWS AI and ML services like Bedrock, SageMaker to enhance product offerings and enable intelligent automation.
* Design high‐availability and disaster recovery architectures, multi‐AZ, multi‐region, Route 53 failover, cross‐region replication, and pilot light/warm standby patterns.
* Implement Infrastructure as Code using CloudFormation, CDK, or Terraform for repeatable, auditable, and version‐controlled deployments across all environments.
* Optimize AWS costs, rightsizing with Compute Optimizer, Reserved Instances, Savings Plans, S3 lifecycle policies, gp2‐to‐gp3 conversions, and idle resource detection.
* Architect containerised and serverless workloads, ECS, EKS, Fargate, Lambda, Step Functions, API Gateway, and EventBridge.
* Conduct Well‐Architected Reviews across all six pillars and remediate findings. Facilitate workshops and training to promote AWS best practices across engineering teams.
* Collaborate with stakeholders to translate business needs into AWS‐specific technical requirements, architecture diagrams, and delivery plans.
Experience
* 10+ years in IT with 7+ years hands‐on designing and operating AWS workloads in production at enterprise scale.
* Deep proficiency in core AWS services: EC2, VPC, S3, IAM, RDS/Aurora, Lambda, ECS/EKS, CloudFormation/CDK, Route 53, ALB/NLB, and CloudWatch.
* Strong knowledge of AWS security services: IAM policies, KMS, Security Hub, Guard Duty, Config, WAF, Inspector, Secrets Manager, and Certificate Manager.
* Practical experience with AWS AI and ML services: Bedrock, SageMaker and familiarity with generative AI and agentic AI concepts.
* Expertise in AWS networking: VPC design, Transit Gateway, Direct Connect, Private Link, Route 53, CloudFront, and multi‐region architectures.
* Strong Infrastructure as Code skills with CloudFormation, CDK, or Terraform for AWS provisioning at scale. Proficiency with Python, Boto3, and AWS CLI.
* Proven experience leading AWS migration program using MGN, Migration Hub, Application Discovery Service, and Database Migration Service.
* Experience with containerised workloads (ECS, EKS, Fargate) and serverless architectures (Lambda, Step Functions) in production.
* AWS Solutions Architect Professional (SAP‐C02) preferred. Additional specialty certifications (Security, Networking, Database, DevOps) are a strong plus.
* Excellent communication and stakeholder management skills. Bachelor's or master's degree in computer science, Engineering, or equivalent experience.
Tools & Technologies Compute
VPC, ALB/NLB, Route 53, CloudFront, Transit Gateway, Direct Connect, Private Link, Global Accelerator
Storage & DB
S3, EBS (gp3/io2), EFS, RDS, Aurora, DynamoDB, Elasticache, Redshift
Security
IAM, KMS, Secrets Manager, Security Hub, Guard Duty, WAF, Shield, Config, Inspector, Macie
Migration
MGN, Migration Hub, DMS, Application Discovery Service, Snow Family
AI / ML
Bedrock, SageMaker
IaC & DevOps
CloudFormation, CDK, Terraform, Code Pipeline, Code Build, GitHub Actions, Boto3, AWS CLI
Monitoring & Cost
CloudWatch, CloudTrail, X‐Ray, Trusted Advisor, Cost Explorer, Compute Optimizer, Budgets
#J-18808-Ljbffr